$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: 3qkMOi/LygHzslyXY2avSd1UAwEkqBF93ExHJfKij74= Subject key identifier: 62:08:F4:15:DA:16:2B:2E:A9:4A:0A:78:25:CF:B4:DF:0B:F1:D8:05 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 3490 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 3490 Signing time: Mon 02 Jun 2025 14:22:59 +0000 Manifest this update: Mon 02 Jun 2025 14:22:59 +0000 Manifest next update: Mon 09 Jun 2025 14:22:59 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: oNeQ2PhKgVDQX8OCQxJ8o7/lcRTDnQxyZD/wH8VroPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13456 (0x3490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Jun 2 14:22:59 2025 GMT Not After : Jun 9 14:22:59 2025 GMT Subject: CN=683db3c3-1145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7e:eb:db:9d:9f:f8:e3:40:2f:fb:ce:33:4f: ca:ed:a3:d7:2e:ce:2b:86:5c:85:57:fb:58:6e:69: 31:8a:6d:f7:c1:4e:81:da:fe:53:bc:bc:21:4b:5a: 30:cb:33:3c:10:76:c2:9b:06:10:f5:55:4d:c3:0d: f9:d8:9a:76:c5:02:66:4d:fc:c4:5f:08:fd:bc:e7: 8d:eb:1e:e4:cf:2f:bc:e1:a7:b6:b6:a6:89:54:68: be:8c:9d:ee:79:78:33:6f:c5:5f:1c:ac:8f:6a:4a: 34:f5:f8:de:13:6c:6a:61:ad:d7:46:50:39:5d:2b: f6:4d:65:e3:0b:a1:78:d6:8e:4a:af:37:0c:bd:46: 04:c9:d0:a3:c6:4a:2b:6d:92:d4:ba:d1:a7:23:69: 56:73:e8:65:7b:32:3d:27:10:1b:5c:ac:e1:ec:ec: a3:52:ae:af:40:35:2c:42:59:95:46:bc:c8:d5:20: d1:f4:95:64:04:7a:8b:95:82:a6:dc:69:a8:32:c7: 8c:6e:ac:24:41:13:2c:0e:83:08:83:ab:ba:cd:4a: 37:f4:f0:ce:06:20:8f:77:9e:a5:56:ea:93:46:ff: de:e3:7e:72:89:45:a7:81:4d:e6:8a:d0:cd:7c:85: ce:e7:92:05:2a:73:ec:e2:57:06:ee:2a:85:2d:53: 5b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:08:F4:15:DA:16:2B:2E:A9:4A:0A:78:25:CF:B4:DF:0B:F1:D8:05 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:ca:10:91:24:3e:d2:eb:96:ec:79:96:90:88:4f:d9:44:02: dd:d6:3e:e3:00:0b:c7:54:e3:ce:92:83:8b:d4:15:4d:31:f9: f6:45:4d:b9:a8:7f:e8:b1:30:0c:01:d6:15:2f:9c:91:95:d9: 2a:a3:0f:80:43:db:c6:3c:9b:1e:ab:dc:8d:42:f4:14:97:f4: 89:d7:90:31:97:4f:45:41:ee:18:b2:48:6f:96:d6:b0:9b:68: 0a:c7:10:ce:64:c9:86:ba:22:ee:0c:29:59:c6:fc:d9:ae:c4: 21:42:27:85:70:76:d2:ac:08:bb:9d:a4:12:5c:8d:41:d3:48: dd:c4:a1:00:61:ce:3c:c3:83:dd:5c:1d:46:69:42:09:cd:2f: db:82:73:0b:46:49:c4:6b:1c:84:0c:61:6b:07:4e:d7:40:ca: 3d:85:cd:a8:f3:b1:82:dc:3f:c7:00:80:ce:15:a3:15:aa:52: 55:c1:56:f5:0d:e1:d7:7a:db:4e:66:23:81:dc:24:fe:f1:51: 96:74:41:57:3b:da:7d:a6:1a:05:08:6d:fb:ff:31:0f:11:64: a3:f2:7e:cb:2f:27:d4:19:97:5e:03:99:b6:4b:17:22:94:91: 59:e0:ab:9e:2b:29:e5:da:8e:e4:ff:75:e1:e7:f6:8c:3a:49: f2:c2:75:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwNjAyMTQyMjU5WhcNMjUwNjA5MTQyMjU5WjAYMRYwFAYD VQQDEw02ODNkYjNjMy0xMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyX7r252f+ONAL/vOM0/K7aPXLs4rhlyFV/tYbmkxim33wU6B2v5TvLwhS1ow yzM8EHbCmwYQ9VVNww352Jp2xQJmTfzEXwj9vOeN6x7kzy+84ae2tqaJVGi+jJ3u eXgzb8VfHKyPako09fjeE2xqYa3XRlA5XSv2TWXjC6F41o5KrzcMvUYEydCjxkor bZLUutGnI2lWc+hlezI9JxAbXKzh7OyjUq6vQDUsQlmVRrzI1SDR9JVkBHqLlYKm 3GmoMseMbqwkQRMsDoMIg6u6zUo39PDOBiCPd56lVuqTRv/e435yiUWngU3mitDN fIXO55IFKnPs4lcG7iqFLVNb/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGII9BXa FisuqUoKeCXPtN8L8dgFMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2yhCRJD7S65bseZaQiE/ZRALd1j7jAAvHVOPOkoOL1BVNMfn2RU25 qH/osTAMAdYVL5yRldkqow+AQ9vGPJseq9yNQvQUl/SJ15Axl09FQe4Yskhvltaw m2gKxxDOZMmGuiLuDClZxvzZrsQhQieFcHbSrAi7naQSXI1B00jdxKEAYc48w4Pd XB1GaUIJzS/bgnMLRknEaxyEDGFrB07XQMo9hc2o87GC3D/HAIDOFaMVqlJVwVb1 DeHXettOZiOB3CT+8VGWdEFXO9p9phoFCG37/zEPEWSj8n7LLyfUGZdeA5m2Sxci lJFZ4KueKynl2o7k/3Xh5/aMOknywnXD -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:24 2025 by rpki-client